Hello,
Can I confirm that the interesting traffic here is only outbound? If it is, you should be able to achieve the intended result with Hide NAT only along with an accompanying firewall rule as follows:
- Create the necessary service objects if they don't already exist (TCP:1935, 3478-3480, UDP: 3478-3479).
- Ensure that the PS4 users exist as a network object with the Hide NAT checkbox enabled.
- Create a firewall rule with the PS4 users as the source, the relevant IP addresses as destination and the service objects above under services with the action to allow.
- Install policy and verify results.
I hope this helps.